writefreely
/
writefreely
réplica de https://github.com/writefreely/writefreely.git
2
0
Fork 0
Código Incidencias Lanzamientos 25 Wiki Actividad
A clean, Markdown-based publishing platform made for writers. Write together, and build a community. https://writefreely.org
No puede seleccionar más de 25 temas Los temas deben comenzar con una letra o número, pueden incluir guiones ('-') y pueden tener hasta 35 caracteres de largo.
1044 Commits
45 Ramas
187 MiB
 
 
 
 
 
Árbol: ce69117c79
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde 'ce69117c79'
${ noResults }
writefreely/invites.go

204 líneas
4.7 KiB
Original Blame Histórico 

  1. /*

  2.  * Copyright © 2019-2020 A Bunch Tell LLC.

  3.  *

  4.  * This file is part of WriteFreely.

  5.  *

  6.  * WriteFreely is free software: you can redistribute it and/or modify

  7.  * it under the terms of the GNU Affero General Public License, included

  8.  * in the LICENSE file in this source code package.

  9.  */

  10. 

  11. package writefreely

  12. 

  13. import (

  14. 	"database/sql"

  15. 	"html/template"

  16. 	"net/http"

  17. 	"strconv"

  18. 	"time"

  19. 

  20. 	"github.com/gorilla/mux"

  21. 	"github.com/writeas/impart"

  22. 	"github.com/writeas/nerds/store"

  23. 	"github.com/writeas/web-core/log"

  24. 	"github.com/writeas/writefreely/page"

  25. )

  26. 

  27. type Invite struct {

  28. 	ID       string

  29. 	MaxUses  sql.NullInt64

  30. 	Created  time.Time

  31. 	Expires  *time.Time

  32. 	Inactive bool

  33. 

  34. 	uses int64

  35. }

  36. 

  37. func (i Invite) Uses() int64 {

  38. 	return i.uses

  39. }

  40. 

  41. func (i Invite) Expired() bool {

  42. 	return i.Expires != nil && i.Expires.Before(time.Now())

  43. }

  44. 

  45. func (i Invite) Active(db *datastore) bool {

  46. 	if i.Expired() {

  47. 		return false

  48. 	}

  49. 	if i.MaxUses.Valid && i.MaxUses.Int64 > 0 {

  50. 		if c := db.GetUsersInvitedCount(i.ID); c >= i.MaxUses.Int64 {

  51. 			return false

  52. 		}

  53. 	}

  54. 	return true

  55. }

  56. 

  57. func (i Invite) ExpiresFriendly() string {

  58. 	return i.Expires.Format("January 2, 2006, 3:04 PM")

  59. }

  60. 

  61. func handleViewUserInvites(app *App, u *User, w http.ResponseWriter, r *http.Request) error {

  62. 	// Don't show page if instance doesn't allow it

  63. 	if !(app.cfg.App.UserInvites != "" && (u.IsAdmin() || app.cfg.App.UserInvites != "admin")) {

  64. 		return impart.HTTPError{http.StatusNotFound, ""}

  65. 	}

  66. 

  67. 	f, _ := getSessionFlashes(app, w, r, nil)

  68. 

  69. 	p := struct {

  70. 		*UserPage

  71. 		Invites  *[]Invite

  72. 		Silenced bool

  73. 	}{

  74. 		UserPage: NewUserPage(app, r, u, "Invite People", f),

  75. 	}

  76. 

  77. 	var err error

  78. 

  79. 	p.Silenced, err = app.db.IsUserSilenced(u.ID)

  80. 	if err != nil {

  81. 		log.Error("view invites: %v", err)

  82. 	}

  83. 

  84. 	p.Invites, err = app.db.GetUserInvites(u.ID)

  85. 	if err != nil {

  86. 		return err

  87. 	}

  88. 	for i := range *p.Invites {

  89. 		(*p.Invites)[i].uses = app.db.GetUsersInvitedCount((*p.Invites)[i].ID)

  90. 	}

  91. 

  92. 	showUserPage(w, "invite", p)

  93. 	return nil

  94. }

  95. 

  96. func handleCreateUserInvite(app *App, u *User, w http.ResponseWriter, r *http.Request) error {

  97. 	muVal := r.FormValue("uses")

  98. 	expVal := r.FormValue("expires")

  99. 

  100. 	if u.IsSilenced() {

  101. 		return ErrUserSilenced

  102. 	}

  103. 

  104. 	var err error

  105. 	var maxUses int

  106. 	if muVal != "0" {

  107. 		maxUses, err = strconv.Atoi(muVal)

  108. 		if err != nil {

  109. 			return impart.HTTPError{http.StatusBadRequest, "Invalid value for 'max_uses'"}

  110. 		}

  111. 	}

  112. 

  113. 	var expDate *time.Time

  114. 	var expires int

  115. 	if expVal != "0" {

  116. 		expires, err = strconv.Atoi(expVal)

  117. 		if err != nil {

  118. 			return impart.HTTPError{http.StatusBadRequest, "Invalid value for 'expires'"}

  119. 		}

  120. 		ed := time.Now().Add(time.Duration(expires) * time.Minute)

  121. 		expDate = &ed

  122. 	}

  123. 

  124. 	inviteID := store.GenerateRandomString("0123456789BCDFGHJKLMNPQRSTVWXYZbcdfghjklmnpqrstvwxyz", 6)

  125. 	err = app.db.CreateUserInvite(inviteID, u.ID, maxUses, expDate)

  126. 	if err != nil {

  127. 		return err

  128. 	}

  129. 

  130. 	return impart.HTTPError{http.StatusFound, "/me/invites"}

  131. }

  132. 

  133. func handleViewInvite(app *App, w http.ResponseWriter, r *http.Request) error {

  134. 	inviteCode := mux.Vars(r)["code"]

  135. 

  136. 	i, err := app.db.GetUserInvite(inviteCode)

  137. 	if err != nil {

  138. 		return err

  139. 	}

  140. 

  141. 	expired := i.Expired()

  142. 	if !expired && i.MaxUses.Valid && i.MaxUses.Int64 > 0 {

  143. 		// Invite has a max-use number, so check if we're past that limit

  144. 		i.uses = app.db.GetUsersInvitedCount(inviteCode)

  145. 		expired = i.uses >= i.MaxUses.Int64

  146. 	}

  147. 

  148. 	if u := getUserSession(app, r); u != nil {

  149. 		// check if invite belongs to another user

  150. 		// error can be ignored as not important in this case

  151. 		if ownInvite, _ := app.db.IsUsersInvite(inviteCode, u.ID); !ownInvite {

  152. 			addSessionFlash(app, w, r, "You're already registered and logged in.", nil)

  153. 			// show homepage

  154. 			return impart.HTTPError{http.StatusFound, "/me/settings"}

  155. 		}

  156. 

  157. 		// show invite instructions

  158. 		p := struct {

  159. 			*UserPage

  160. 			Invite  *Invite

  161. 			Expired bool

  162. 		}{

  163. 			UserPage: NewUserPage(app, r, u, "Invite to "+app.cfg.App.SiteName, nil),

  164. 			Invite:   i,

  165. 			Expired:  expired,

  166. 		}

  167. 		showUserPage(w, "invite-help", p)

  168. 		return nil

  169. 	}

  170. 

  171. 	p := struct {

  172. 		page.StaticPage

  173. 		*OAuthButtons

  174. 		Error   string

  175. 		Flashes []template.HTML

  176. 		Invite  string

  177. 	}{

  178. 		StaticPage:   pageForReq(app, r),

  179. 		OAuthButtons: NewOAuthButtons(app.cfg),

  180. 		Invite:       inviteCode,

  181. 	}

  182. 

  183. 	if expired {

  184. 		p.Error = "This invite link has expired."

  185. 	}

  186. 

  187. 	// Tell search engines not to index invite links

  188. 	w.Header().Set("X-Robots-Tag", "noindex")

  189. 

  190. 	// Get error messages

  191. 	session, err := app.sessionStore.Get(r, cookieName)

  192. 	if err != nil {

  193. 		// Ignore this

  194. 		log.Error("Unable to get session in handleViewInvite; ignoring: %v", err)

  195. 	}

  196. 	flashes, _ := getSessionFlashes(app, w, r, session)

  197. 	for _, flash := range flashes {

  198. 		p.Flashes = append(p.Flashes, template.HTML(flash))

  199. 	}

  200. 

  201. 	// Show landing page

  202. 	return renderPage(w, "signup.tmpl", p)

  203. }